How to get a Controller to Ignore a Directly Connected Route? I know the first question comes to mind is the "why?". If you look at the attached diagram traffic is coming in remotely using VIA with the ikev2 routing flag set for on. I need all IPSEC regardless of final destination to to hit my firewall. It is very much preferred for the firewall to control access into management. I do have my managment VLAN interface set for "no ip routing". Is there a way via policy or routing to have management traffic follow the chosen path? Diagram is left/right.